|
258991
|
8.4 |
HIGH
Local
|
razer
|
synapse
|
Razer Synapse 2.20.15.1104 and earlier uses weak permissions for the CrashReporter directory, which allows local users to gain privileges via a Trojan horse dbghelp.dll file.
|
CWE-732
Incorrect Permission Assignment for Critical Resource
|
CVE-2017-11652
|
2024-11-21 12:08 |
2017-08-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258992
|
6.5 |
MEDIUM
Network
|
mindwerks
|
wildmidi
|
The _WM_SetupMidiEvent function in internal_midi.c:2122 in WildMIDI 0.4.2 can cause a denial of service (invalid memory read and application crash) via a crafted mid file.
|
CWE-125
Out-of-bounds Read
|
CVE-2017-11664
|
2024-11-21 12:08 |
2017-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258993
|
6.5 |
MEDIUM
Network
|
mindwerks
|
wildmidi
|
The _WM_SetupMidiEvent function in internal_midi.c:2315 in WildMIDI 0.4.2 can cause a denial of service (invalid memory read and application crash) via a crafted mid file.
|
CWE-125
Out-of-bounds Read
|
CVE-2017-11663
|
2024-11-21 12:08 |
2017-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258994
|
7.5 |
HIGH
Network
|
mindwerks
|
wildmidi
|
The _WM_ParseNewMidi function in f_midi.c in WildMIDI 0.4.2 can cause a denial of service (invalid memory read and application crash) via a crafted mid file.
|
CWE-125
Out-of-bounds Read
|
CVE-2017-11662
|
2024-11-21 12:08 |
2017-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258995
|
7.5 |
HIGH
Network
|
mindwerks
|
wildmidi
|
The _WM_SetupMidiEvent function in internal_midi.c:2318 in WildMIDI 0.4.2 can cause a denial of service (invalid memory read and application crash) via a crafted mid file.
|
CWE-125
Out-of-bounds Read
|
CVE-2017-11661
|
2024-11-21 12:08 |
2017-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258996
|
8.8 |
HIGH
Local
|
hashicorp
|
vagrant_vmware_fusion
|
HashiCorp Vagrant VMware Fusion plugin (aka vagrant-vmware-fusion) before 4.0.24 uses weak permissions for the sudo helper scripts, allows local users to execute arbitrary code with root privileges b…
|
CWE-276
Incorrect Default Permissions
|
CVE-2017-11741
|
2024-11-21 12:08 |
2017-08-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258997
|
7.3 |
HIGH
Local
|
dashlane
|
dashlane
|
Dashlane might allow local users to gain privileges by placing a Trojan horse WINHTTP.dll in the %APPDATA%\Dashlane directory.
|
CWE-426
Untrusted Search Path
|
CVE-2017-11657
|
2024-11-21 12:08 |
2017-08-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258998
|
9.8 |
CRITICAL
Network
|
ioquake3
|
ioquake3
|
Buffer overflow in ioquake3 before 2017-08-02 allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted packet.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-11721
|
2024-11-21 12:08 |
2017-08-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258999
|
6.5 |
MEDIUM
Network
|
libquicktime
|
libquicktime
|
In libquicktime 1.2.4, an allocation failure was found in the function quicktime_read_ftyp in ftyp.c, which allows attackers to cause a denial of service via a crafted file.
|
CWE-20
Improper Input Validation
|
CVE-2017-12145
|
2024-11-21 12:08 |
2017-08-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259000
|
5.5 |
MEDIUM
Local
|
ytnef_project
|
ytnef
|
In ytnef 1.9.2, an allocation failure was found in the function TNEFFillMapi in ytnef.c, which allows attackers to cause a denial of service via a crafted file.
|
CWE-770
Allocation of Resources Without Limits or Throttling
|
CVE-2017-12144
|
2024-11-21 12:08 |
2017-08-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
